A Survey of Awareness of Social Engineering Attacks to Information Security Management Systems at Kibabii University
Mbuguah S M.1& Otibene T .O2
Citation: KIBU Conference (2017). Innovative Research and Knowledge for Global Competitiveness and Sustainable Development. Proceedings of 2nd Interdisciplinary International Scientific Conference 14 – 15 June 2017. Kibabii University Main campus, Bungoma Kenya ISBN: 978-9966-59-011-4
Computer based system are socio-technical system in nature. The security of the system depends both on technical aspect and also social aspect. The social aspect refers to people in contact with system commonly referred to as wetware. To attack the system you may consider to target the technical or wetware. Social engineering is based on exploiting human traits that make human susceptible to these attacks. The aim of this paper was establish how aware the staff of Kibabii are of these attributes and how these attributes could be used by social engineers to penetrate Information Security Management systems at Kibabii University. A survey research was adopted with a questionnaire being developed using Google application, was administered online to all staff members of Kibabii University. A descriptive analysis was carried out on feedback. The finding is that to a large extent the sampled staff are aware of these traits but there need for awareness training to enhance the information security managementsystem of Kibabii University.